-
Suggestion
-
Resolution: Duplicate
-
48
-
19
-
Currently, if a user has visibility of email address set to “Only you and admins” in https://id.atlassian.com/manage-profile/profile-and-visibility emailAddress is not returned in REST API responses
The customer would like the following behaviour
- When a Jira admin/site admin calls a REST API endpoint returning user information, the API responses should include the emailAddress of users in the responses
- They would like this to be the case irrespective of the visibility of email address set in https://id.atlassian.com/manage-profile/profile-and-visibility
- Rationale - Jira admin/site admin are able to see the email address information via the UI and therefore should see the same behaviour when using the REST API.
[JRACLOUD-80288] emailAddress of users in REST API responses
| Labels | New: jws24 |
| Resolution | Original: Won't Do [ 10000 ] | New: Duplicate [ 3 ] |
| Status | Original: Closed [ 6 ] | New: Closed [ 6 ] |
| Resolution | New: Won't Do [ 10000 ] | |
| Status | Original: Gathering Interest [ 11772 ] | New: Closed [ 6 ] |
Hi all,
I'm Eric, a principal developer on the Jira Cloud team.
I don't anticipate we will ever implement this suggestion as described. In particular we aim to preserve the user's visibility settings.
2cd38258bd6a, regarding the behaviour of Jira admins not being able to see user email addresses, this is the correct behaviour. Being a Jira Administrator is not sufficient to be able to see a user's personal information if they have not permitted it; users must be Organization Administrators to count as an "admin" for that purpose. I thought I should double check the code though, just in case. I looked just now and it is indeed fetching the email address from the correct place. On rare occasions an empty result will be returned but usually an empty result indicates the caller does not have the user's permission to see their email address.
982031f333e6 you're correct that there are different APIs for the user admin pages and what is exposed via the Jira REST API. In case you're interested in the internals, these are handled by two different systems and the user management system has a little more knowledge about what is safe to show a given user.
We are building out APIs that use the user management source and I expect we'll eventually remove the existing Jira APIs (not in the near future and using the standard deprecation process, of course). The organization APIs https://developer.atlassian.com/cloud/admin/organization/rest/intro/#about might be suitable or the user management APIs https://developer.atlassian.com/cloud/admin/user-management/rest/intro/#about for some people's purposes here.
| UIS | Original: 44 | New: 48 |
The fact that the admin UI can display these email addresses but I, even using my admin credentials, cannot achieve this through published APIs means that the UI is "cheating" and using methods to access this data that us mere mortals cannot.
Like NiYunFan, the lack of access to email addresses is breaking our scripts. We only have email addresses as a mechanism to identify users on the platform - we don't and cannot keep track of Atlassian account IDs.
This should be treated as a bug and not a feature request or an improvement.
| UIS | Original: 40 | New: 44 |
| Support reference count | Original: 18 | New: 19 |
Pinned by
Hala ElRoumy
Dear Customers,
We have a new update regarding this feature and it can be tracked on this request:
Hi all,
We have a new API available here: https://developer.atlassian.com/cloud/admin/organization/rest/api-group-users/#api-v1-orgs-orgid-users-search-post that returns the user email address regardless of profile visibility setting.
Thanks,
Stefan
Thanks,
Hala | Atlassian Support Team